strong_routes 1.0.2 → 2.0.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: eb6ccd8355f108b1f20a7b360fcd1e7338787eb5
-  data.tar.gz: a48b69732cafb969a2c804d53ff71b8fc207c346
+SHA256:
+  metadata.gz: 110e6ed6ddef5a511bec7361e12f0264f000e995cde37c0b17e51a70c04e5801
+  data.tar.gz: 69962aeb4a3542b4208ed44f72d4d0a002fa5af57cd03f489de056eb931e07c2
 SHA512:
-  metadata.gz: 869ab0a9f88bac63c1f4cb725882968ccf4c609832e4221f794c928fce6682f08e80efafdd5e3ca373dd37331c2d942451314da94b0e371767f2ffc37f3f3279
-  data.tar.gz: 9a438c8125148f290549a4426b08287f710789b72ac7748b2d8c2ea862a1ac390933f1aabf6145276570fb943f132c2d8eac112fedd8ad928584ffd5ccc5d1d1
+  metadata.gz: 4384f2f42dc58b9ddedb75f5c287ee90880f773e0e51059e1e22dc3b3776e723d05ac3d4b03136998cb107ece9b8e8013eacb17f0bbe7c5d058f2f031fa913c1
+  data.tar.gz: 5c4a7ff749c8e4953a825c08330f850d26bed5d0e9d2bc8017b86ecb2071c9fb7a20ebd4df5a90e07933bc06005eff719afe96741f026cc7f8cdcb1393b44a22

data/.rubocop.yml

@@ -0,0 +1,3 @@
+---
+inherit_gem:
+  standard: config/ruby-2.7.yml

data/.standard.yml

@@ -0,0 +1,3 @@
+# For available configuration options, see:
+#   https://github.com/standardrb/standard
+format: progress # default: Standard::Formatter

data/CHANGELOG.md

@@ -0,0 +1,28 @@
+## [Unreleased]
+
+- Require Ruby 2.7
+- Use Standard styles
+
+## [1.0.2] - 2016-02-09
+
+- Make allow middleware thread-safe ([61a3b50](https://github.com/liveh2o/strong_routes/commit/61a3b507e83f6a582d1cee9f36b70306b0fc0eae))
+
+## [1.0.1] - 2014-06-05
+
+- Recognize root paths [#3](https://github.com/liveh2o/strong_routes/pull/3)
+
+## [1.0.0] - 2014-06-04
+
+## [0.9.5] - 2014-03-31
+
+## [0.9.4] - 2014-02-18
+
+## [0.9.3] - 2014-02-17
+
+## [0.9.2] - 2014-02-17
+
+## [0.9.1] - 2014-02-17
+
+## [0.9.0] - 2014-02-17
+
+- Initial release

data/CODE_OF_CONDUCT.md

@@ -0,0 +1,132 @@
+# Contributor Covenant Code of Conduct
+
+## Our Pledge
+
+We as members, contributors, and leaders pledge to make participation in our
+community a harassment-free experience for everyone, regardless of age, body
+size, visible or invisible disability, ethnicity, sex characteristics, gender
+identity and expression, level of experience, education, socio-economic status,
+nationality, personal appearance, race, caste, color, religion, or sexual
+identity and orientation.
+
+We pledge to act and interact in ways that contribute to an open, welcoming,
+diverse, inclusive, and healthy community.
+
+## Our Standards
+
+Examples of behavior that contributes to a positive environment for our
+community include:
+
+* Demonstrating empathy and kindness toward other people
+* Being respectful of differing opinions, viewpoints, and experiences
+* Giving and gracefully accepting constructive feedback
+* Accepting responsibility and apologizing to those affected by our mistakes,
+  and learning from the experience
+* Focusing on what is best not just for us as individuals, but for the overall
+  community
+
+Examples of unacceptable behavior include:
+
+* The use of sexualized language or imagery, and sexual attention or advances of
+  any kind
+* Trolling, insulting or derogatory comments, and personal or political attacks
+* Public or private harassment
+* Publishing others' private information, such as a physical or email address,
+  without their explicit permission
+* Other conduct which could reasonably be considered inappropriate in a
+  professional setting
+
+## Enforcement Responsibilities
+
+Community leaders are responsible for clarifying and enforcing our standards of
+acceptable behavior and will take appropriate and fair corrective action in
+response to any behavior that they deem inappropriate, threatening, offensive,
+or harmful.
+
+Community leaders have the right and responsibility to remove, edit, or reject
+comments, commits, code, wiki edits, issues, and other contributions that are
+not aligned to this Code of Conduct, and will communicate reasons for moderation
+decisions when appropriate.
+
+## Scope
+
+This Code of Conduct applies within all community spaces, and also applies when
+an individual is officially representing the community in public spaces.
+Examples of representing our community include using an official email address,
+posting via an official social media account, or acting as an appointed
+representative at an online or offline event.
+
+## Enforcement
+
+Instances of abusive, harassing, or otherwise unacceptable behavior may be
+reported to the community leaders responsible for enforcement at
+[INSERT CONTACT METHOD].
+All complaints will be reviewed and investigated promptly and fairly.
+
+All community leaders are obligated to respect the privacy and security of the
+reporter of any incident.
+
+## Enforcement Guidelines
+
+Community leaders will follow these Community Impact Guidelines in determining
+the consequences for any action they deem in violation of this Code of Conduct:
+
+### 1. Correction
+
+**Community Impact**: Use of inappropriate language or other behavior deemed
+unprofessional or unwelcome in the community.
+
+**Consequence**: A private, written warning from community leaders, providing
+clarity around the nature of the violation and an explanation of why the
+behavior was inappropriate. A public apology may be requested.
+
+### 2. Warning
+
+**Community Impact**: A violation through a single incident or series of
+actions.
+
+**Consequence**: A warning with consequences for continued behavior. No
+interaction with the people involved, including unsolicited interaction with
+those enforcing the Code of Conduct, for a specified period of time. This
+includes avoiding interactions in community spaces as well as external channels
+like social media. Violating these terms may lead to a temporary or permanent
+ban.
+
+### 3. Temporary Ban
+
+**Community Impact**: A serious violation of community standards, including
+sustained inappropriate behavior.
+
+**Consequence**: A temporary ban from any sort of interaction or public
+communication with the community for a specified period of time. No public or
+private interaction with the people involved, including unsolicited interaction
+with those enforcing the Code of Conduct, is allowed during this period.
+Violating these terms may lead to a permanent ban.
+
+### 4. Permanent Ban
+
+**Community Impact**: Demonstrating a pattern of violation of community
+standards, including sustained inappropriate behavior, harassment of an
+individual, or aggression toward or disparagement of classes of individuals.
+
+**Consequence**: A permanent ban from any sort of public interaction within the
+community.
+
+## Attribution
+
+This Code of Conduct is adapted from the [Contributor Covenant][homepage],
+version 2.1, available at
+[https://www.contributor-covenant.org/version/2/1/code_of_conduct.html][v2.1].
+
+Community Impact Guidelines were inspired by
+[Mozilla's code of conduct enforcement ladder][Mozilla CoC].
+
+For answers to common questions about this code of conduct, see the FAQ at
+[https://www.contributor-covenant.org/faq][FAQ]. Translations are available at
+[https://www.contributor-covenant.org/translations][translations].
+
+[homepage]: https://www.contributor-covenant.org
+[v2.1]: https://www.contributor-covenant.org/version/2/1/code_of_conduct.html
+[Mozilla CoC]: https://github.com/mozilla/diversity
+[FAQ]: https://www.contributor-covenant.org/faq
+[translations]: https://www.contributor-covenant.org/translations

data/LICENSE.txt

@@ -1,22 +1,21 @@
-Copyright (c) 2013 Adam Hutchison
+The MIT License (MIT)
 
-MIT License
+Copyright (c) 2024 Adam Hutchison
 
-Permission is hereby granted, free of charge, to any person obtaining
-a copy of this software and associated documentation files (the
-"Software"), to deal in the Software without restriction, including
-without limitation the rights to use, copy, modify, merge, publish,
-distribute, sublicense, and/or sell copies of the Software, and to
-permit persons to whom the Software is furnished to do so, subject to
-the following conditions:
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
 
-The above copyright notice and this permission notice shall be
-included in all copies or substantial portions of the Software.
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
 
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
-EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
-MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
-NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
-LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
-OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
-WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -1,3 +1,7 @@
+[![Build](https://github.com/liveh2o/strong_routes/actions/workflows/main.yml/badge.svg)](https://github.com/liveh2o/strong_routes/actions)
+[![Ruby Style Guide](https://img.shields.io/badge/code_style-standard-brightgreen.svg)](https://github.com/standardrb/standard)
+[![Gem Version](https://badge.fury.io/rb/strong_routes.svg)](https://badge.fury.io/rb/strong_routes)
+
 # Strong Routes
 
 Strong Routes is a simple Rack middleware to reject requests to unknown routes before allocating connections or any resources.
@@ -20,7 +24,7 @@ Or install it yourself as:
 
 ### Rails Apps
 
-In Rails apps, using strong routes is as simple as adding it to your Gemfile. The middleware is automatically added to the middleware stack. Any routes defined by the application are automatically allowed by default.
+In Rails apps, using Strong Routes is as simple as adding it to your Gemfile. The middleware is automatically added to the middleware stack. Any routes defined by the application are automatically allowed by default.
 
 ### Rack Apps
 
@@ -44,16 +48,17 @@ StrongRoutes.config.allowed_routes = [ /\A\//i, /\A\/posts/i ]
 
 ### Response
 
-Any routes that aren't allowed will return a 404 by default:
+Any routes that aren't allowed will return a 404 by default. In Rails apps, Strong Routes renders `public/404.html` if it is present. If it is not, Strong Routes renders an empty response:
 
 ```
-[ 404, { "Content-Type" => "text/html", "Content-Length" => "18" }, [ "Resource Not Found" ] ]
+[ 404, {}, [] ]
 ```
 
-The message that is returned can be specified using the `message` config option:
+The content that is returned can be specified using the `content` config option:
 
 ```Ruby
-StrongRoutes.config.message = File.read(Rails.root.join('public/404.html'))
+StrongRoutes.config.content = File.read(Rails.root.join('public/404.html'))
+StrongRoutes.config.content_type = "text/html"
 ```
 
 ## Contributing

data/Rakefile

@@ -1,11 +1,10 @@
 require "bundler/gem_tasks"
-require "rake/testtask"
+require "minitest/test_task"
 
-Rake::TestTask.new do |t|
-  t.libs.push "spec"
-  t.pattern = "spec/**/*_spec.rb"
-  t.verbose = false
+Minitest::TestTask.create do |t|
+  t.warning = false
 end
 
-task :default => :test
-task :spec => :test
+require "standard/rake"
+
+task default: %i[test standard:fix]

data/lib/strong_routes/allow.rb

@@ -1,54 +1,23 @@
 module StrongRoutes
   class Allow
-    def initialize(app, options = {})
+    def initialize(app)
       @app = app
-      @options = options
     end
 
-    def _call(env)
-      return @app.call(env) unless enabled?
-
-      request = ::Rack::Request.new(env)
+    def call(env)
+      return @app.call(env) unless config.enabled?
 
-      if allowed?(request)
+      if StrongRoutes.allowed?(env[Rack::PATH_INFO].to_s)
         @app.call(env)
       else
-        [ 404, { "Content-Type" => "text/html", "Content-Length" => config.message.length.to_s }, [ config.message ] ]
-      end
-    end
-
-    # HACK: This makes this middleware threadsafe, but is not a very good pattern.
-    # We should rewrite this to use a separate class with instance-level stuff.
-    def call(env)
-      dup._call(env)
-    end
-
-  private
-
-    def allowed_routes
-      @allowed_routes ||= begin
-        routes = [ config.allowed_routes ]
-        routes.flatten!
-        routes.compact!
-        routes.uniq!
-        routes
+        StrongRoutes.response
       end
     end
 
-    def allowed?(request)
-      route_matchers.any? { |route_matcher| route_matcher =~ request.path_info }
-    end
+    private
 
     def config
-      @config ||= StrongRoutes.config.merge(@options)
-    end
-
-    def enabled?
-      config.enabled?
-    end
-
-    def route_matchers
-      @route_matchers ||= allowed_routes.map { |allowed_route| ::StrongRoutes::RouteMatcher.new(allowed_route) }
+      StrongRoutes.config
     end
   end
 end

data/lib/strong_routes/config.rb

@@ -1,51 +1,50 @@
+# frozen_string_literal: true
+
 module StrongRoutes
-  module Accessorable
-    # Creates an accessor that simply sets and reads a key in the hash:
-    #
-    #   class Config < Hash
-    #     hash_accessor :app
-    #   end
-    #
-    #   config = Config.new
-    #   config.app = Foo
-    #   config[:app] #=> Foo
-    #
-    #   config[:app] = Bar
-    #   config.app #=> Bar
-    #
-    def hash_accessor(*names) #:nodoc:
-      names.each do |name|
-        class_eval <<-METHOD, __FILE__, __LINE__ + 1
-          def #{name}
-            self[:#{name}]
-          end
-
-          def #{name}=(value)
-            self[:#{name}] = value
-          end
-
-          def #{name}?
-            !! self[:#{name}]
-          end
-        METHOD
-      end
+  class Config
+    attr_accessor :enabled,
+      :content,
+      :content_type,
+      :insert_after,
+      :insert_before
+
+    attr_reader :allowed_routes, :route_matchers
+    attr_writer :status
+
+    def initialize
+      @allowed_routes = Set.new
+      @enabled = true
+      @route_matchers = []
     end
-  end
 
-  class Config < Hash
-    extend Accessorable
+    def allowed_routes=(value)
+      raise TypeError, "allowed routes must be an Enumerable" unless value.is_a?(Enumerable)
+      @allowed_routes = value.to_set
+      @route_matchers = allowed_routes.map { |route| StrongRoutes::Matcher.new(route) }
+    end
 
-    hash_accessor :allowed_routes,
-                  :enabled,
-                  :insert_after,
-                  :insert_before,
-                  :message
+    def enabled?
+      !!enabled
+    end
 
-    def initialize(*)
-      super
+    def headers
+      if content.present?
+        {Rack::CONTENT_TYPE => content_type || "text/plain"}
+      else
+        {}
+      end
+    end
+
+    def insert_after?
+      !!insert_after
+    end
+
+    def insert_before?
+      !!insert_before
+    end
 
-      self[:enabled] = true if self[:enabled].nil?
-      self[:message] = "Resource Not Found" if self[:message].nil?
+    def status
+      @status ||= 404
     end
   end
 end

data/lib/strong_routes/matcher.rb

@@ -0,0 +1,16 @@
+# frozen_string_literal: true
+
+module StrongRoutes
+  class Matcher < Regexp
+    def initialize(route)
+      if route.is_a?(Regexp)
+        super
+      else
+        escaped_route = Regexp.escape(route)
+        # Replace dynamic segments in the route with wildcards (e.g. /:foo/users/:id becomes /.*/users/.*)
+        escaped_route.gsub!(/:\w+/, ".*")
+        super(/\A#{escaped_route}/i)
+      end
+    end
+  end
+end

data/lib/strong_routes/railtie.rb

@@ -0,0 +1,42 @@
+# frozen_string_literal: true
+
+require "strong_routes/route_mapper"
+
+module StrongRoutes
+  class Railtie < Rails::Railtie
+    config.strong_routes = StrongRoutes.config
+
+    initializer "strong_routes.initialize" do |app|
+      if config.strong_routes.insert_before?
+        app.config.middleware.insert_before(config.strong_routes.insert_before, Allow)
+      elsif config.strong_routes.insert_after?
+        app.config.middleware.insert_after(config.strong_routes.insert_after, Allow)
+      else
+        app.config.middleware.insert_before(Rails::Rack::Logger, Allow)
+      end
+
+      if config.strong_routes.content.blank?
+        file_name = Rails.root.join("public/404.html")
+        if File.exist?(file_name)
+          config.strong_routes.content = File.read(file_name)
+          config.strong_routes.content_type = "text/html"
+        end
+      end
+    end
+
+    # Added in 7.1, but fixed in 7.1.3 to run whenever routes are re/loaded
+    # https://github.com/rails/rails/issues/50720
+    if config.respond_to?(:after_routes_loaded)
+      config.after_routes_loaded do
+        config.strong_routes.allowed_routes = RouteMapper.map(Rails.application.routes)
+      end
+    else
+      config.after_initialize do |app|
+        # Need to force Rails to load the routes since there's no way to hook
+        # in after routes are loaded
+        app.reload_routes!
+        config.strong_routes.allowed_routes = RouteMapper.map(app.routes)
+      end
+    end
+  end
+end

data/lib/strong_routes/route_mapper.rb

@@ -0,0 +1,39 @@
+module StrongRoutes
+  class RouteMapper
+    attr_reader :route_set
+
+    def self.map(route_set)
+      route_mapper = new(route_set)
+      route_mapper.map
+    end
+
+    def initialize(route_set)
+      @route_set = route_set
+    end
+
+    # Map the route set to a collection of the top level segments.
+    def map
+      map = matches.map { |match_data| match_data[:path] }
+      map.uniq!
+      map
+    end
+
+    private
+
+    # Convert the path strings into match data objects, capturing all segments
+    # except optional ones (e.g. :format).
+    def matches
+      matches = paths.map { |path| path.match(/\A(?<path>[-:\w\/]+)\/*.*\Z/) }
+      matches.uniq!
+      matches
+    end
+
+    # Extract the route paths from the route objects so we have a simple
+    # string to interact with.
+    def paths
+      paths = route_set.routes.map { |route| route.path.spec.to_s }
+      paths.uniq!
+      paths
+    end
+  end
+end

data/lib/strong_routes/version.rb

@@ -1,3 +1,3 @@
 module StrongRoutes
-  VERSION = "1.0.2"
+  VERSION = "2.0.0"
 end

data/lib/strong_routes.rb

@@ -1,17 +1,26 @@
-require 'rack/request'
+require "rack/response"
 
-require 'strong_routes/allow'
-require 'strong_routes/config'
-require 'strong_routes/route_matcher'
-require 'strong_routes/version'
+require "strong_routes/allow"
+require "strong_routes/config"
+require "strong_routes/matcher"
+require "strong_routes/route_mapper"
+require "strong_routes/version"
 
 module StrongRoutes
+  def self.allowed?(route)
+    config.route_matchers.any? { |route_matcher| route_matcher =~ route }
+  end
+
   def self.config
     @config ||= Config.new
   end
 
+  def self.response
+    Rack::Response[config.status, config.headers, config.content]
+  end
+
   # Initialize the config
   config
 end
 
-require 'strong_routes/rails/railtie' if defined?(Rails)
+require "strong_routes/railtie" if defined?(Rails)

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: strong_routes
 version: !ruby/object:Gem::Version
-  version: 1.0.2
+  version: 2.0.0
 platform: ruby
 authors:
 - Adam Hutchison
 autorequire: 
-bindir: bin
+bindir: exe
 cert_chain: []
-date: 2016-02-09 00:00:00.000000000 Z
+date: 2024-12-21 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rack
@@ -24,90 +24,6 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
-- !ruby/object:Gem::Dependency
-  name: actionpack
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 3.2.0
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 3.2.0
-- !ruby/object:Gem::Dependency
-  name: bundler
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: pry-nav
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: rack-test
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: rake
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: simplecov
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
 description: Middleware to reject/allow requests before allocating a database connection
   or any resources
 email:
@@ -116,29 +32,27 @@ executables: []
 extensions: []
 extra_rdoc_files: []
 files:
-- ".gitignore"
-- Gemfile
+- ".rubocop.yml"
+- ".standard.yml"
+- CHANGELOG.md
+- CODE_OF_CONDUCT.md
 - LICENSE.txt
 - README.md
 - Rakefile
 - lib/strong_routes.rb
 - lib/strong_routes/allow.rb
 - lib/strong_routes/config.rb
-- lib/strong_routes/rails/railtie.rb
-- lib/strong_routes/rails/route_mapper.rb
-- lib/strong_routes/route_matcher.rb
+- lib/strong_routes/matcher.rb
+- lib/strong_routes/railtie.rb
+- lib/strong_routes/route_mapper.rb
 - lib/strong_routes/version.rb
-- spec/spec_helper.rb
-- spec/strong_routes/allow_spec.rb
-- spec/strong_routes/config_spec.rb
-- spec/strong_routes/rails/route_mapper_spec.rb
-- spec/strong_routes/route_matcher_spec.rb
-- spec/strong_routes_spec.rb
-- strong_routes.gemspec
 homepage: https://github.com/liveh2o/strong_routes
 licenses:
 - MIT
-metadata: {}
+metadata:
+  homepage_uri: https://github.com/liveh2o/strong_routes
+  source_code_uri: https://github.com/liveh2o/strong_routes
+  changelog_uri: https://github.com/liveh2o/strong_routes/blob/main/CHANGELOG.md
 post_install_message: 
 rdoc_options: []
 require_paths:
@@ -147,23 +61,16 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '0'
+      version: 2.7.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.5.1
+rubygems_version: 3.4.22
 signing_key: 
 specification_version: 4
 summary: Middleware to reject/allow requests before allocating a database connection
   or any resources
-test_files:
-- spec/spec_helper.rb
-- spec/strong_routes/allow_spec.rb
-- spec/strong_routes/config_spec.rb
-- spec/strong_routes/rails/route_mapper_spec.rb
-- spec/strong_routes/route_matcher_spec.rb
-- spec/strong_routes_spec.rb
+test_files: []

data/.gitignore

@@ -1,18 +0,0 @@
-*.gem
-*.rbc
-.bundle
-.config
-.ruby-*
-.yardoc
-Gemfile.lock
-InstalledFiles
-_yardoc
-coverage
-doc/
-lib/bundler/man
-pkg
-rdoc
-spec/reports
-test/tmp
-test/version_tmp
-tmp

data/Gemfile

@@ -1,4 +0,0 @@
-source 'https://rubygems.org'
-
-# Specify your gem's dependencies in strong_routes.gemspec
-gemspec

data/lib/strong_routes/rails/railtie.rb

@@ -1,31 +0,0 @@
-require 'strong_routes/rails/route_mapper'
-
-module StrongRoutes
-  module Rails
-    class Railtie < ::Rails::Railtie
-      config.strong_routes = StrongRoutes.config
-
-      initializer 'strong_routes.initialize' do |app|
-        case
-        when config.strong_routes.insert_before? then
-          app.config.middleware.insert_before(config.strong_routes.insert_before, Allow)
-        when config.strong_routes.insert_after? then
-          app.config.middleware.insert_after(config.strong_routes.insert_after, Allow)
-        else
-          app.config.middleware.insert_before(::Rails::Rack::Logger, Allow)
-        end
-      end
-
-      # Load this late so initializers that depend on routes have a chance to
-      # initialize (i.e. Devise)
-      config.after_initialize do |app|
-        # Need to force Rails to load the routes since there's no way to hook
-        # in after routes are loaded
-        app.reload_routes!
-
-        config.strong_routes.allowed_routes ||= []
-        config.strong_routes.allowed_routes += RouteMapper.map(app.routes)
-      end
-    end
-  end
-end

data/lib/strong_routes/rails/route_mapper.rb

@@ -1,45 +0,0 @@
-require 'active_support/core_ext/hash/reverse_merge'
-
-module StrongRoutes
-  module Rails
-    class RouteMapper
-      attr_reader :route_set
-
-      def self.map(route_set)
-        route_mapper = self.new(route_set)
-        route_mapper.map
-      end
-
-      def initialize(route_set)
-        @route_set = route_set
-      end
-
-      # Map the route set to a collection of the top level segments.
-      def map
-        map = matches.map { |match_data| match_data[:path] }
-        map.compact!
-        map.uniq!
-        map
-      end
-
-    private
-
-      # Convert the path strings into match data objects, capturing all segments
-      # except optional ones (e.g. :format).
-      def matches
-        matches = paths.map { |path| path.match(/\A(?<path>[-:\w\/]+)\/*.*\Z/) }
-        matches.compact!
-        matches.uniq!
-        matches
-      end
-
-      # Extract the route paths from the route objects so we have a simple
-      # string to interact with.
-      def paths
-        paths = route_set.routes.map { |route| route.path.spec.to_s }
-        paths.uniq!
-        paths
-      end
-    end
-  end
-end

data/lib/strong_routes/route_matcher.rb

@@ -1,23 +0,0 @@
-module StrongRoutes
-  class RouteMatcher < Regexp
-    def initialize(route)
-      if route.is_a?(Regexp)
-        super(route)
-      else
-        route = map_dynamic_segments(route)
-        route = "/#{route}" unless route =~ /\A\//
-        escaped_route = Regexp.escape(route)
-        super(/\A#{route}/i)
-      end
-    end
-
-    private
-
-    # Replace dynamic segments in the route with wildcards (e.g. /:foo/users/:id
-    # becomes /.*/users/.*)
-    #
-    def map_dynamic_segments(route)
-      route.to_s.gsub(/:\w+/, '.*')
-    end
-  end
-end

data/spec/spec_helper.rb

@@ -1,26 +0,0 @@
-require 'rubygems'
-
-# Start SimpleCov
-require 'simplecov'
-SimpleCov.start do
-  add_filter "/spec"
-end
-
-# Load gems with Bundler
-require 'bundler'
-::Bundler.require(:default, :development, :test)
-
-require 'minitest/autorun'
-require 'minitest/spec'
-require 'minitest/pride'
-
-include ::Rack::Test::Methods
-
-class MiniTest::Spec
-  class << self
-    alias_method :setup, :before
-    alias_method :teardown, :after
-    alias_method :should, :it
-    alias_method :context, :describe
-  end
-end

data/spec/strong_routes/allow_spec.rb

@@ -1,92 +0,0 @@
-require 'spec_helper'
-
-def middleware
-  ::StrongRoutes::Allow
-end
-
-describe ::StrongRoutes::Allow do
-  let(:app) { middleware.new(stack) }
-  let(:stack) { lambda { |env| [ 200, { "Content-Type" => "text/plain" }, [ "Good" ] ] } }
-
-  context "without allowed routes set" do
-    it "does not allow access to /users" do
-      get "/users"
-      last_response.wont_be :ok?
-    end
-
-    it "does not allow access to /users/profile" do
-      get "/users/profile"
-      last_response.wont_be :ok?
-    end
-
-    it "does not allow access to /users/profile/anything" do
-      get "/users/profile/anything"
-      last_response.wont_be :ok?
-    end
-
-    it "does not allow access to /users/profile/anything?stuff=12" do
-      get "/users/profile/anything?stuff=12"
-      last_response.wont_be :ok?
-    end
-
-    it "does not allow empty path" do
-      get "/"
-      last_response.wont_be :ok?
-    end
-  end
-
-  context "with allowed routes set" do
-    let(:users_path) { [ /\/users/i ] }
-
-    before do
-      ::StrongRoutes.config.allowed_routes = users_path
-    end
-
-    after do
-      ::StrongRoutes.config.allowed_routes = nil
-    end
-
-    it "allows access to /users" do
-      get "/users"
-      last_response.must_be :ok?
-    end
-
-    it "does not allow access to /user" do
-      get "/user"
-      last_response.wont_be :ok?
-    end
-
-    it "allows access to /users/profile/anything?stuff=12" do
-      get "/users/profile/anything?stuff=12"
-      last_response.must_be :ok?
-    end
-  end
-
-  context "enabled option is false" do
-    let(:app) { middleware.new(stack, { :enabled => false }) }
-
-    it "passes request to the next app" do
-      get "/users/profile/anything?stuff=12"
-      last_response.must_be :ok?
-    end
-  end
-
-  context "allowed_routes passed to initializer" do
-    let(:app) { middleware.new(stack, { :allowed_routes => [ :users ] }) }
-
-    it "allows /users with :users" do
-      get "/users"
-      last_response.must_be :ok?
-    end
-
-    it "does not allow /user :user" do
-      get "/user"
-      last_response.wont_be :ok?
-    end
-
-    it "allows access to /users/profile/anything?stuff=12 with :users" do
-      get "/users/profile/anything?stuff=12"
-      last_response.must_be :ok?
-    end
-  end
-end

data/spec/strong_routes/config_spec.rb

@@ -1,29 +0,0 @@
-require 'spec_helper'
-
-describe ::StrongRoutes::Config do
-  subject { ::StrongRoutes::Config.new }
-
-  describe "API" do
-    it "supports :allowed_routes" do
-      subject.respond_to?(:allowed_routes).must_equal true
-    end
-
-    it "supports :enabled" do
-      subject.respond_to?(:enabled).must_equal true
-    end
-
-    it "supports :insert_after" do
-      subject.respond_to?(:insert_after).must_equal true
-    end
-
-    it "supports :insert_before" do
-      subject.respond_to?(:insert_before).must_equal true
-    end
-  end
-
-  describe "#enabled" do
-    it "is enabled by default" do
-      subject.must_be :enabled
-    end
-  end
-end

data/spec/strong_routes/rails/route_mapper_spec.rb

@@ -1,56 +0,0 @@
-require 'spec_helper'
-
-require 'action_dispatch'
-require 'strong_routes/rails/route_mapper'
-
-describe ::StrongRoutes::Rails::RouteMapper do
-  let(:paths) {
-    [
-      '/',
-      '/bar/sandwich',
-      '/comments/:id',
-      '/comments/:id/edit',
-      '/posts/:id',
-      '/posts/:id/edit',
-      '/posts/:post_id/comments',
-      '/posts/:post_id/comments/new',
-      '/trading-post',
-      '/user_posts/:id',
-      '/users',
-      '/users/:user_id/posts',
-      '/users/:user_id/posts/new',
-    ]
-  }
-  let(:route_set) {
-    route_set = ActionDispatch::Routing::RouteSet.new
-    route_set.draw do
-      resources :users, :only => :index  do
-        resources :posts, :shallow => true do
-          resources :comments, :shallow => true
-        end
-      end
-
-      resources :user_posts, :only => :show
-
-      get 'bar/sandwich', :to => 'users#index'
-      get 'trading-post', :to => 'posts#show'
-
-      root :to => 'posts#index'
-    end
-    route_set
-  }
-
-  describe ".map" do
-    it "maps routes to path strings" do
-      ::StrongRoutes::Rails::RouteMapper.map(route_set).sort.must_equal paths.sort
-    end
-  end
-
-  describe "#map" do
-    subject { ::StrongRoutes::Rails::RouteMapper.new(route_set) }
-
-    it "maps routes to path strings" do
-      subject.map.sort.must_equal paths.sort
-    end
-  end
-end

data/spec/strong_routes/route_matcher_spec.rb

@@ -1,45 +0,0 @@
-require 'spec_helper'
-
-describe ::StrongRoutes::RouteMatcher do
-  describe "initialize" do
-    context "when given a regex" do
-      let(:matcher) { /foo/ }
-
-      subject { ::StrongRoutes::RouteMatcher.new(matcher) }
-
-      it "uses the regex as the matcher" do
-        subject.must_equal matcher
-      end
-    end
-
-    context "when given a symbol" do
-      let(:matcher) { /\A\/foo/i }
-
-      subject { ::StrongRoutes::RouteMatcher.new(:foo) }
-
-      it "creates a new matcher" do
-        subject.must_equal matcher
-      end
-    end
-
-    context "when given a string" do
-      let(:matcher) { /\A\/foo/i }
-
-      subject { ::StrongRoutes::RouteMatcher.new('foo') }
-
-      it "creates a new matcher" do
-        subject.must_equal matcher
-      end
-    end
-
-    context "when given a string with dynamic segments" do
-      let(:matcher) { /\A\/.*\/foo\/.*\/bar/i }
-
-      subject { ::StrongRoutes::RouteMatcher.new(':id/foo/:foo_id/bar') }
-
-      it "creates a new matcher" do
-        subject.must_equal matcher
-      end
-    end
-  end
-end

data/spec/strong_routes_spec.rb

@@ -1,11 +0,0 @@
-require 'spec_helper'
-
-describe ::StrongRoutes do
-  subject { ::StrongRoutes }
-
-  describe ".config" do
-    it "initializes a new config object" do
-      subject.config.must_be :instance_of?, ::StrongRoutes::Config
-    end
-  end
-end

data/strong_routes.gemspec

@@ -1,29 +0,0 @@
-# coding: utf-8
-lib = File.expand_path('../lib', __FILE__)
-$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
-require 'strong_routes/version'
-
-Gem::Specification.new do |spec|
-  spec.name          = "strong_routes"
-  spec.version       = StrongRoutes::VERSION
-  spec.authors       = ["Adam Hutchison"]
-  spec.email         = ["liveh2o@gmail.com"]
-  spec.summary       = %q{Middleware to reject/allow requests before allocating a database connection or any resources}
-  spec.description   = spec.summary
-  spec.homepage      = "https://github.com/liveh2o/strong_routes"
-  spec.license       = "MIT"
-
-  spec.files         = `git ls-files`.split($/)
-  spec.executables   = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
-  spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
-  spec.require_paths = ["lib"]
-
-  spec.add_dependency "rack"
-
-  spec.add_development_dependency "actionpack", ">= 3.2.0"
-  spec.add_development_dependency "bundler"
-  spec.add_development_dependency "pry-nav"
-  spec.add_development_dependency "rack-test"
-  spec.add_development_dependency "rake"
-  spec.add_development_dependency "simplecov"
-end